Outbreak AlertLangflow Unauth RCE Attack
Watch Video
AI builder for agentic applications targeted
FortiGuard Labs has observed a significant uptick in attacks targeting Langflow, leveraging a recently discovered authentication bypass vulnerability that allows unauthenticated remote attackers to fully compromise affected servers. Learn More »
Common Vulnerabilities and Exposures
Background
Langflow is a Python-based web application that offers a visual interface for building AI-driven agents and workflows. A critical authentication bypass vulnerability, identified as CVE-2025-3248, has been discovered in Langflow. This vulnerability allows remote, unauthenticated attackers to execute arbitrary code on affected instances by sending a specially crafted HTTP request with a malicious payload.
As AI workflows become increasingly prevalent across industries, the need to ensure the security of AI tools and applications has never been more critical. With the growing reliance on AI systems for decision-making, automation, and innovation, any vulnerability or breach in these systems could have far-reaching consequences.
Explore the current challenges, and discover how FortiAI seamlessly integrates security and transformation to safeguard your AI-driven operations.
https://www.fortinet.com/solutions/enterprise-midsize-business/fortiai
Latest Development
Recent news and incidents related to cybersecurity threats encompassing various events such as data breaches, cyber-attacks, security incidents, and vulnerabilities discovered.
Organizations using Langflow in their AI development workflows are advised to upgrade to version 1.3.0.
-
June 17, 2025: Trend Research has identified an active campaign exploiting CVE-2025-3248 to deliver the Flodrix botnet.
https://www.trendmicro.com/en_us/research/25/f/langflow-vulnerability-flodric-botnet.html# -
May 06, 2025: FortiGuard Threat Signal Report released- Langflow Missing Authentication Vulnerability
https://www.fortiguard.com/threat-signal-report/6085/langflow-missing-authentication-vulnerability -
May 05, 2025: The Cybersecurity and Infrastructure Security Agency (CISA) has confirmed that this vulnerability is actively being exploited in the wild. As a result, it has been added to CISA's Known Exploited Vulnerabilities (KEV) catalog, emphasizing the urgent need for organizations using Langflow to take immediate action to mitigate this security risk.
-
April 09, 2025: Horizon3.ai released a detailed blog post.
https://horizon3.ai/attack-research/disclosures/unsafe-at-any-speed-abusing-python-exec-for-unauth-rce-in-langflow-ai/ -
March 31, 2025: Langflow 1.3.0 released
https://github.com/langflow-ai/langflow/releases/tag/1.3.0
FortiGuard Cybersecurity Framework
Mitigate security threats and vulnerabilities by leveraging the range of FortiGuard Services.
-
Lure
-
Decoy VM
-
IPS
-
Web App Security
-
IOC
-
Outbreak Detection
-
Content Update
-
Automated Response
-
Assisted Response Services
-
NOC/SOC Training
-
End-User Training
-
Vulnerability Management
-
Attack Surface Monitoring (Inside & Outside)
-
Attack Surface Hardening
Threat Intelligence
Information gathered from analyzing ongoing cybersecurity events including threat actors, their tactics, techniques, and procedures (TTPs), indicators of compromise (IOCs), malware and related vulnerabilities.
References
Sources of information in support and relation to this Outbreak and vendor.